CVE-2025-69272 — Cleartext Transmission of Sensitive Info in DX Netops Spectrum

CWE-319 — Cleartext Transmission of Sensitive Info3 documents3 sources

Severity

5.3MEDIUMNVD

EPSS

0.0%

top 94.59%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Broadcom DX Netops Spectrum

Timeline

PublishedJan 12

Description

Cleartext Transmission of Sensitive Information vulnerability in Broadcom DX NetOps Spectrum on Windows, Linux allows Sniffing Attacks.This issue affects DX NetOps Spectrum: 21.2.1 and earlier.

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N

Affected Packages2 packages

▶NVDbroadcom/dx_netops_spectrum< 21.2.2

▶CVEListV5broadcom/dx_netops_spectrum21.2.1 and earlier

🔴Vulnerability Details

GHSA

GHSA-w979-vp3h-7hh9: Cleartext Transmission of Sensitive Information vulnerability in Broadcom DX NetOps Spectrum on Windows, Linux allows Sniffing Attacks↗2026-01-12

▶

CVEList

Spectrum password returned in clear↗2026-01-12

▶